CVE-2023-47435
CRITICALDescription
An issue in the verifyPassword function of hexo-theme-matery v2.0.0 allows attackers to bypass authentication and access password protected pages.
Is your site exposed to CVE-2023-47435?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
References
Frequently Asked Questions
What is CVE-2023-47435? +
How severe is CVE-2023-47435? +
How do I check if I'm vulnerable to CVE-2023-47435? +
Related Vulnerabilities
"Remember me" cookie age is not verified on the server. This potentially allows an attacker to intercept a valid cookie …
Transmitted data is logged between the device and the backend service. An attacker could use these logs to perform a …
Use of fixed learning codes, one code to lock the car and the other code to unlock it, in the …
A weakness identified in OpenText Advanced Authentication where a Malicious browser plugin can record and replay the user authentication process …
Use of fixed learning codes, one code to lock the car and the other code to unlock it, the Key …
Misskey is an open source, federated social media platform. Prior to 2026.6.0, Misskey contains a vulnerability in Time-based One-Time Password …